Simply put, “Gigamon’s new technology allows network traffic to be inspected by capturing traffic before encryption or after decryption using eBPF,” said Christopher Steffan, vice president of research at EMA. “It doesn’t require encryption keys and doesn’t need to perform resource-intensive decryption.”
“With the new tech, you don’t actually have to manage, track or use keys,” Dickman said. “There’s no computing needed for an additional overlay of secondary decryption because that’s how decryption usually works where you interrupt a traffic stream, and then decrypt it and re-encrypt, which is quite expensive, compute-wise.”
Update receives additional capabilities
The latest GigaVUE release has added a few other capabilities, other than the Precryption technology, to support visibility and decryption in a host of environments.
With the new “Cloud SSL decryption” capability, Gigamon looks to extend classic on-premises decryption capabilities to virtual and cloud platforms. “Application Metadata Intelligence” is another capability that allows for the detection of vulnerabilities and suspicious activities across both managed and unmanaged hosts.
Most significant and integral to Gigamon’s Precryption is the “Universal Cloud Tap” capability that serves a single, executable tap for platforms to allow control and configuration of eBPF. “UCT is how we pull out visibility to network data in containers as well as VMs in a very efficient manner,” Dickman said.
Gigamon’s latest capabilities are well received by analysts who deem it long overdue. “So many organizations have network encryption requirements, but many do not have a method of adhering to these requirements of implementing network encryption while retaining the ability to monitor network traffic,” said Chris Steffen, vice president of research at EMA. “Precryption solves this problem, allowing security and network administrators to deliver on encryption controls while maintaining their ability to protect company resources by not losing visibility on their internal and external network traffic.”